EasyManuals Logo

Cisco AP775A - Nexus Converged Network Switch 5010 User Manual

Cisco AP775A - Nexus Converged Network Switch 5010
1486 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #887 background imageLoading...
Page #887 background image
Send documentation comments to mdsfeedback-doc@cisco.com
42-5
Cisco MDS 9000 Family Fabric Manager Configuration Guide
OL-17256-03, Cisco MDS NX-OS Release 4.x
Chapter 42 Configuring IPv4 and IPv6 Access Control Lists
Creating IPv4-ACLs or IPv6-ACLs with the IP-ACL Wizard
ToS Information
IP packets can be filtered based on the following optional ToS conditions:
• ToS level—The level is specified by a number from 0 to 15.
• ToS name—The name can be max-reliability, max-throughput, min-delay, min-monetary-cost, and
normal.
Creating IPv4-ACLs or IPv6-ACLs with the IP-ACL Wizard
Traffic coming into the switch is compared to IPv4-ACL or IPv6-ACL filters based on the order that the
filters occur in the switch. New filters are added to the end of the IPv4-ACL or the IPv6-ACL. The switch
keeps looking until it has a match. If no matches are found when the switch reaches the end of the filter,
the traffic is denied. For this reason, you should have the frequently hit filters at the top of the filter.
There is an implied deny for traffic that is not permitted. A single-entry IPv4-ACL or IPv6-ACL with
only one deny entry has the effect of denying all traffic.
To configure an IPv4-ACL or an IPv6-ACL, follow these steps:
Step 1 Create an IPv4-ACL or an IPv6-ACL by specifying a filter name and one or more access condition(s).
Filters require the source and destination address to match a condition. Use optional keywords to
configure finer granularity.
Note The filter entries are executed in sequential order. You can only add the entries to the end of the
list. Take care to add the entries in the correct order.
Step 2 Apply the access filter to specified interfaces.
To create an ordered list of IP filters in a named IPv4-ACL or IPv6-ACL profile using the IPv4-ACL
Wizard in Fabric Manager, follow these steps:
Step 1 Click the IP ACL Wizard icon from the Fabric Manager toolbar (see Figure 42-1).
Figure 42-1 IP ACL Wizard
You see the IP ACL Wizard.
Step 2 Enter a name for the IP-ACL.
1. ICMP redirect packets are always rejected.

Table of Contents

Other manuals for Cisco AP775A - Nexus Converged Network Switch 5010

Preview: Reference
Reference886 pages
Preview: Command Reference
Command Reference792 pages
Preview: Release Note
Release Note26 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco AP775A - Nexus Converged Network Switch 5010 and is the answer not in the manual?

Cisco AP775A - Nexus Converged Network Switch 5010 Specifications

General IconGeneral
BrandCisco
ModelAP775A - Nexus Converged Network Switch 5010
CategorySwitch
LanguageEnglish

Related product manuals